Jérôme Segura
Lead Malware Intelligence Analyst

Security researcher with a focus on malvertising, exploits and scams. French; appreciates wine, bread and cheese.

June 17, 2016 - For those tracking exploit kits, the disappearance of the Angler exploit kit last week was a major event. While a lot of questions remain, several clues pointed out that this was no ordinary break, and that something deeper was likely going on. After about ten days without Angler EK, we take a look at the exploit kit landscape.

CONTINUE READINGNo Comments

June 10, 2016 - In the past week, the Angler EK has almost completely disappeared. Instead, we see Neutrino EK take center stage in various attacks.

CONTINUE READINGNo Comments

June 6, 2016 - Malvertising isn't only used to infect users via drive-by downloads or to deceitfully push fake software updates. A campaign currently going on via the TrafficHolder adult ad platform leverages the promise of raunchy videos to lure people into ad fraud. The trick is simple and yet effective. While browsing, users are automatically redirected to what appears to be YouTube for adult content.

CONTINUE READING1 Comment

May 25, 2016 - A well known malvertising gang famous for its use of the fingerprinting technique and other evasion tricks to bypass security checks has been ramping up its activity against many different ad platforms to push malware via top websites. The setup for these malvertising attacks relies on a combination of techniques that start with the fraudulent advertiser choosing a victim, typically a legitimate website in the retail, or legal business.

CONTINUE READING6 Comments

May 17, 2016 - Tech support scammers up the ante with malware-like screen lockers.

CONTINUE READING9 Comments

Select your language